7487bfdfc1cb9db8ed8b436ff87c0497_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7487bfdfc1cb9db8ed8b436ff87c0497_JaffaCakes118
Size

4.4MB
MD5

7487bfdfc1cb9db8ed8b436ff87c0497
SHA1

802b62711cf51227b95631f292305b6ebceed018
SHA256

a13fad0d43b3db3b1f78118c3591a42cca0ed4373414ed82f2351719b2901b92
SHA512

42194a104d2fb89d91f8cc4781bffdb84a5fcc6c1ee4e94d608fb781b3bb06462f5d0519b7657a47349d7eb68c6da81a6afc9b9a456b0210f80fb85d494a8f36
SSDEEP

98304:nTYuqkoZG0rk+ae5bfwzulQ6UzuPJ5Wn1PnIOLkHee3Ir9LOx4fSr:nsTZ7478bfwShW1PngbCFOx4e

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Triworks/乐音 3.0 (Demo)/EyeSong.exe	upx

Unsigned PE 12 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Triworks/乐音 3.0 (Demo)/EyeSong.exe
unpack002/out.upx
unpack001/Triworks/乐音 3.0 (Demo)/LFCMP11n.DLL
unpack001/Triworks/乐音 3.0 (Demo)/LTDIS11n.dll
unpack001/Triworks/乐音 3.0 (Demo)/cr-esong.exe
unpack001/Triworks/乐音 3.0 (Demo)/lfbmp11n.dll
unpack001/Triworks/乐音 3.0 (Demo)/ltefx11n.dll
unpack001/Triworks/乐音 3.0 (Demo)/ltfil11n.DLL
unpack001/Triworks/乐音 3.0 (Demo)/ltimg11n.dll
unpack001/Triworks/乐音 3.0 (Demo)/ltkrn11n.dll
unpack001/Triworks/乐音 3.0 (Demo)/lttwn11n.dll
unpack001/Triworks/乐音 3.0 (Demo)/mfc42.dll

Files

7487bfdfc1cb9db8ed8b436ff87c0497_JaffaCakes118
.rar
Triworks/乐音 3.0 (Demo)/EYESONG.HLP
Triworks/乐音 3.0 (Demo)/EyeSong.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 917KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODE
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/Eyesong.GID
Triworks/乐音 3.0 (Demo)/Eyesong.cnt
Triworks/乐音 3.0 (Demo)/Eyesong.ini
Triworks/乐音 3.0 (Demo)/Funsong.ttf
Triworks/乐音 3.0 (Demo)/LFCMP11n.DLL
.dll windows:4 windows x86 arch:x86

588d909b97d979e12c63a97519211fc0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
lstrcpyA
lstrcmpA
TlsSetValue
TlsAlloc
TlsFree
GetOEMCP
FreeEnvironmentStringsA
SetFilePointer
SetStdHandle
GetLocaleInfoW
CloseHandle
FlushFileBuffers
GetLocaleInfoA
VirtualAlloc
GetStringTypeW
LoadLibraryA
RtlUnwind
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
SetLastError
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
GetCPInfo
GetACP
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
HeapDestroy
HeapCreate
VirtualFree
WriteFile
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
LCMapStringW
GetStringTypeA
HeapFree
LCMapStringA

ltkrn11n

ord175
ord116
ord183
ord163
ord162
ord169
ord194
ord189
ord109
ord192
ord101
ord188
ord134
ord125
ord100
ord141
ord174
ord129
ord137
ord179
ord190
ord191

Exports

Exports

DllMain
fltComment
fltCompressBuffer
fltDeletePage
fltEndCompressBuffer
fltGetStamp
fltGetTag
fltInfo
fltLoad
fltLoadJPEG
fltSave
fltSaveJPEG
fltStartCompressBuffer

Sections

.text
Size: 198KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/LTDIS11n.dll
.dll windows:4 windows x86 arch:x86

db58398fd0e3cd5ce9b60631d60e8046

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStringsW
GetStdHandle
GetFileType
GetEnvironmentStrings
FreeEnvironmentStringsW
InitializeCriticalSection
WideCharToMultiByte
WriteFile
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapAlloc
VirtualAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
RaiseException
LCMapStringA
LCMapStringW
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
CloseHandle
SetFilePointer
GetCPInfo
GetModuleFileNameA
GlobalAlloc
SetHandleCount
lstrcpynA
GetTickCount
GlobalHandle
GlobalFree
GetProfileStringA
TlsSetValue
TlsFree
TlsAlloc
GlobalUnlock
TlsGetValue
GlobalLock
lstrlenA
MulDiv
lstrcmpA
DeleteCriticalSection
GetStartupInfoA
lstrcpyA
VirtualFree
HeapCreate
HeapDestroy
GetLastError
GetCurrentThreadId
GetCurrentProcess
SetLastError
ExitProcess
GetVersion
TerminateProcess
GetProcAddress
GetCommandLineA
GetModuleHandleA

user32

SetCursor
IsRectEmpty
UnionRect
EmptyClipboard
SetClipboardData
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
RegisterClipboardFormatA
IntersectRect
OffsetRect
DefWindowProcA
SetWindowLongA
BeginPaint
EndPaint
GetCursorPos
ScreenToClient
PtInRect
LoadCursorA
SetCapture
ReleaseCapture
SetWindowPos
IsIconic
SetWindowTextA
InvalidateRect
ShowWindow
GetWindowLongA
GetClassNameA
DestroyWindow
UnregisterClassA
IsWindow
SetRect
RegisterClassA
GetSystemMetrics
AdjustWindowRect
CreateWindowExA
SendMessageA
GetClientRect
CopyRect
GetDC
ReleaseDC

gdi32

StartPage
StartDocA
CreateRectRgnIndirect
CreatePolygonRgn
CreateRoundRectRgn
SetRectRgn
CreateEllipticRgnIndirect
OffsetRgn
PatBlt
GetRgnBox
CreatePatternBrush
CreateRectRgn
FrameRgn
GetObjectA
GetDIBits
CombineRgn
EndPage
EndDoc
AbortDoc
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
StretchDIBits
GetDeviceCaps
DeleteDC
CreateMetaFileA
SaveDC
CreateEnhMetaFileA
CloseEnhMetaFile
CloseMetaFile
RestoreDC
SetEnhMetaFileBits
GetEnhMetaFileHeader
SetMetaFileBitsEx
GetMetaFileBitsEx
PlayEnhMetaFile
GetEnhMetaFileBits
SetWindowOrgEx
SetWindowExtEx
SetMapMode
SetViewportExtEx
PlayMetaFile
SetViewportOrgEx
DeleteMetaFile
CopyEnhMetaFileA
DeleteEnhMetaFile
CreatePen
SelectObject
CopyMetaFileA
RealizePalette
SelectPalette
Rectangle
CreateDCA
DeleteObject
GetStockObject
CreateBitmap

ltkrn11n

ord135
ord173
ord147
ord130
ord169
ord244
ord208
ord105
ord226
ord154
ord199
ord243
ord121
ord129
ord251
ord134
ord151
ord222
ord133
ord112
ord202
ord239
ord238
ord237
ord137
ord171
ord203
ord175
ord156
ord229
ord228
ord164
ord159
ord163
ord122
ord124
ord123
ord106
ord111
ord104
ord232
ord219
ord218
ord241
ord108
ord128
ord115
ord141
ord234
ord200
ord183
ord158
ord107
ord120
ord116
ord117
ord191
ord125
ord189
ord196
ord190
ord110
ord174
ord179
ord161
ord101
ord188

Exports

Exports

DllMain
L_AllocateMetaBitmapBits
L_AppendPlayback
L_BitmapHasRgn
L_CancelPlaybackWait
L_ChangeFromDDB
L_ChangeFromEMF
L_ChangeFromMetafile
L_ChangeFromWMF
L_ChangeToDDB
L_ChangeToEMF
L_ChangeToMetafile
L_ChangeToWMF
L_ClearPlaybackUpdateRect
L_ClipboardReady
L_ConvertColorSpace
L_ConvertFromDDB
L_ConvertFromEMF
L_ConvertFromMetafile
L_ConvertFromWMF
L_ConvertToDDB
L_ConvertToEMF
L_ConvertToMetafile
L_ConvertToWMF
L_CopyFromClipboard
L_CopyMetaBitmap
L_CopyToClipboard
L_CopyToClipboardExt
L_CreateMaskFromBitmapRgn
L_CreatePaintPalette
L_CreatePanWindow
L_CreatePlayback
L_DeleteMetaBitmap
L_DestroyPanWindow
L_DestroyPlayback
L_FrameBitmapRgn
L_FreeBitmapRgn
L_GetBitmapClipSegments
L_GetBitmapClipSegmentsMax
L_GetBitmapRgnArea
L_GetBitmapRgnBounds
L_GetBitmapRgnHandle
L_GetDisplayMode
L_GetMetafileInfo
L_GetPaintContrast
L_GetPaintGamma
L_GetPaintIntensity
L_GetPlaybackDelay
L_GetPlaybackIndex
L_GetPlaybackState
L_GetPlaybackUpdateRect
L_HalfToneBitmap
L_HalfToneBitmapExt
L_IntGetBitmapRgnHandle
L_IsPtInBitmapRgn
L_LoadMetaBitmap
L_OffsetBitmapRgn
L_PaintDC
L_PaintDCBuffer
L_PaintMetaBitmap
L_PaintRgnDC
L_PaintRgnDCBuffer
L_ParseMetaBits
L_PrintBitmap
L_PrintBitmapExt
L_PrintBitmapFast
L_ProcessPlayback
L_ScreenCaptureBitmap
L_SetBitmapRgnColor
L_SetBitmapRgnEllipse
L_SetBitmapRgnFromMask
L_SetBitmapRgnHandle
L_SetBitmapRgnPolygon
L_SetBitmapRgnRect
L_SetBitmapRgnRoundRect
L_SetDisplayMode
L_SetPaintContrast
L_SetPaintGamma
L_SetPaintIntensity
L_SetPlaybackIndex
L_UnderlayBitmap
L_UpdatePanWindow
L_ValidatePlaybackLines
L_WindowLevel
L_WindowLevelFillLUT

Sections

.text
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/Uninst.isu
Triworks/乐音 3.0 (Demo)/cr-esong.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

code
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Triworks/乐音 3.0 (Demo)/eysong乐音教程.swf
Triworks/乐音 3.0 (Demo)/lfbmp11n.dll
.dll windows:4 windows x86 arch:x86

205445a932dcc6260073c015014167ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
TlsGetValue
TlsSetValue
TlsAlloc
TlsFree
HeapCreate
HeapDestroy
SetFilePointer
SetStdHandle
CloseHandle
FlushFileBuffers
LoadLibraryA
VirtualAlloc
HeapFree
HeapAlloc
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
SetLastError
lstrcpyA
GetEnvironmentStrings
DeleteCriticalSection
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA

ltkrn11n

ord201
ord175
ord129
ord192
ord189
ord188
ord134
ord174
ord101
ord131
ord163
ord100
ord137
ord141
ord125
ord179
ord191
ord190

Exports

Exports

DllMain
fltDeletePage
fltInfo
fltLoad
fltSave

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/ltefx11n.dll
.dll windows:4 windows x86 arch:x86

91b5d244ec4691fa6acfd6b9f5499aef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ltkrn11n

ord175
ord218
ord134
ord171
ord179
ord125

ltdis11n

ord122
ord158
ord118
ord132
ord119
ord138

kernel32

CloseHandle
SetStdHandle
SetFilePointer
lstrlenA
GetVersion
GetTickCount
FlushFileBuffers
GetStartupInfoA
SetHandleCount
LCMapStringA
GetLocaleInfoW
GetFileType
GetStdHandle
GetStringTypeW
GetLocaleInfoA
LCMapStringW
GetCommandLineA
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
GetEnvironmentStringsW
GetStringTypeA
WideCharToMultiByte
LoadLibraryA
DeleteCriticalSection
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
VirtualAlloc
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree

user32

IntersectRect
ScrollDC
SetRect
OffsetRect
DrawTextA
IsRectEmpty
InflateRect

gdi32

SelectPalette
Rectangle
RestoreDC
GetClipBox
CreateDCA
CreatePalette
RealizePalette
CreateEllipticRgn
CombineRgn
StretchBlt
RoundRect
OffsetRgn
PaintRgn
SaveDC
CreateRectRgn
Pie
CreatePatternBrush
CreatePen
GetNearestColor
CreateBrushIndirect
UnrealizeObject
SetBrushOrgEx
SetPolyFillMode
GetObjectA
CreateFontIndirectA
DeleteObject
SelectObject
PatBlt
CreateSolidBrush
BitBlt
FrameRgn
SelectClipRgn
Polygon
Ellipse
GetStockObject
ExtTextOutA
GetTextExtentPoint32A
SetBkColor
SetBkMode
CreateHatchBrush
SetTextColor
DeleteDC
CreateBitmap
CreateCompatibleDC
GetTextColor
CreateCompatibleBitmap
SetTextAlign

Exports

Exports

DllMain
L_EfxDraw3dShape
L_EfxDraw3dText
L_EfxDrawFrame
L_EfxDrawRotated3dText
L_EfxEffectBlt
L_EfxGradientFillRect
L_EfxPaintBitmap
L_EfxPaintTransition
L_EfxPatternFillRect
L_PaintDCEffect
L_PaintRgnDCEffect

Sections

.text
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/ltfil11n.DLL
.dll windows:4 windows x86 arch:x86

a1bd03670bdd8645c30aa342507b873d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WaitForSingleObject
SetEvent
GlobalFree
GlobalUnlock
CloseHandle
GlobalLock
GlobalAlloc
CreateEventA
lstrcpyA
LeaveCriticalSection
EnterCriticalSection
GetProcAddress
SetErrorMode
LoadLibraryA
OpenFile
lstrcatA
lstrcmpA
GetModuleFileNameA
FreeLibrary
lstrlenA
InitializeCriticalSection
GetVersion
DeleteCriticalSection
GlobalHandle
GlobalSize
GlobalFlags
TlsSetValue
TlsAlloc
TlsFree
GetLocaleInfoA
GetStringTypeW
GetLocaleInfoW
GetStringTypeA
SetFilePointer
FlushFileBuffers
LCMapStringW
SetStdHandle
VirtualAlloc
WriteFile
LCMapStringA
GetEnvironmentStringsW
FreeEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
GetEnvironmentStrings
GetACP
GetCPInfo
GetOEMCP
GetStdHandle
GetFileType
GetStartupInfoA
VirtualFree
HeapCreate
SetHandleCount
UnhandledExceptionFilter
HeapDestroy
TerminateProcess
ExitProcess
GetCurrentProcess
SetLastError
HeapAlloc
GetCurrentThreadId
TlsGetValue
HeapFree
RtlUnwind
GetModuleHandleA
GetCommandLineA
GetDriveTypeA
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
ExitThread
ResumeThread
CreateThread
GetLastError

user32

SetRect

ltkrn11n

ord246
ord236
ord238
ord247
ord162
ord193
ord171
ord128
ord116
ord123
ord241
ord148
ord112
ord108
ord232
ord135
ord230
ord141
ord234
ord158
ord134
ord231
ord154
ord173
ord156
ord129
ord221
ord214
ord122
ord101
ord219
ord163
ord215
ord169
ord152
ord243
ord161
ord121
ord203
ord210
ord191
ord137
ord190
ord188
ord196
ord189
ord151
ord183
ord194
ord174
ord125
ord175
ord237
ord179
ord124
ord100
ord133

Exports

Exports

DllMain
L_2DGetViewMode
L_2DGetViewport
L_2DSetViewMode
L_2DSetViewport
L_CompressBuffer
L_DeletePage
L_EndCompressBuffer
L_FeedLoad
L_FileConvert
L_FileInfo
L_FileInfoMemory
L_GetComment
L_GetDefaultLoadFileOption
L_GetDefaultSaveFileOption
L_GetFileCommentSize
L_GetLoadResolution
L_GetPCDResolution
L_GetSaveResolution
L_GetTag
L_GetWMFResolution
L_IgnoreFilters
L_LoadBitmap
L_LoadBitmapList
L_LoadBitmapMemory
L_LoadFile
L_LoadFileOffset
L_LoadFileTile
L_LoadMemory
L_PreLoadFilters
L_ReadFileComment
L_ReadFileCommentExt
L_ReadFileCommentMemory
L_ReadFileStamp
L_ReadFileTag
L_ReadFileTagMemory
L_ReadFileTransforms
L_ReadLoadResolutions
L_SaveBitmap
L_SaveBitmapList
L_SaveBitmapMemory
L_SaveData
L_SaveFile
L_SaveFileMemory
L_SaveFileOffset
L_SaveFileTile
L_SetComment
L_SetLoadInfoCallback
L_SetLoadResolution
L_SetPCDResolution
L_SetSaveResolution
L_SetTag
L_SetWMFResolution
L_StartCompressBuffer
L_StartFeedLoad
L_StartSaveData
L_StopFeedLoad
L_StopSaveData
L_VecFeedLoad
L_VecLoadFile
L_VecLoadMemory
L_VecSaveFile
L_VecSaveMemory
L_VecStartFeedLoad
L_VecStopFeedLoad
L_WriteFileCommentExt
L_WriteFileStamp
L_WriteFileTransforms

Sections

.text
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/ltimg11n.dll
.dll windows:4 windows x86 arch:x86

4cfbceb4692414ec0c3314d79328886e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalFree
LocalUnlock
lstrcpyA
LocalLock
LocalAlloc
lstrlenA
MulDiv
TlsGetValue
TlsAlloc
TlsFree
HeapReAlloc
SetEnvironmentVariableA
CompareStringW
GlobalReAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
TlsSetValue
lstrcatA
LCMapStringW
GetStartupInfoA
GetStringTypeW
GetStringTypeA
RaiseException
LoadLibraryA
VirtualAlloc
HeapAlloc
HeapFree
GetTimeZoneInformation
WriteFile
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
MultiByteToWideChar
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
GetLastError
GetStdHandle
GetFileType
SetHandleCount
VirtualFree
HeapCreate
HeapDestroy
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetModuleHandleA
GetProcAddress
LCMapStringA
CompareStringA
GetCommandLineA
GlobalFree
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindNextFileA
FindFirstFileA

user32

IsRectEmpty
SetRect

gdi32

GetStockObject
MoveToEx
CreatePen
LineTo
SelectObject
DeleteObject

ltkrn11n

ord232
ord179
ord238
ord166
ord235
ord151
ord234
ord237
ord252
ord121
ord162
ord134
ord128
ord251
ord158
ord195
ord133
ord236
ord244
ord169
ord172
ord213
ord221
ord125
ord116
ord100
ord141
ord108
ord123
ord117
ord120
ord148
ord174
ord173
ord137
ord171
ord129
ord199
ord156
ord196
ord135
ord175
ord230
ord243
ord130
ord154

ltdis11n

ord104
ord103
ord117
ord159
ord110

ltfil11n

ord101

Exports

Exports

DllMain
L_AddBitmapNoise
L_AutoTrimBitmap
L_AverageFilterBitmap
L_BinaryFilterBitmap
L_ChangeBitmapContrast
L_ChangeBitmapHue
L_ChangeBitmapIntensity
L_ChangeBitmapSaturation
L_ColorMergeBitmap
L_ColorSeparateBitmap
L_ContourFilterBitmap
L_DeskewBitmap
L_DespeckleBitmap
L_EmbossBitmap
L_GammaCorrectBitmap
L_GetAutoTrimRect
L_GetBitmapColorCount
L_GetBitmapHistogram
L_GetMinMaxBits
L_GetMinMaxVal
L_HistoContrastBitmap
L_HistoEqualizeBitmap
L_IntensityDetectBitmap
L_InvertBitmap
L_MaxFilterBitmap
L_MedianFilterBitmap
L_MinFilterBitmap
L_MosaicBitmap
L_OilifyBitmap
L_PicturizeBitmap
L_PosterizeBitmap
L_RemapBitmapIntensity
L_SharpenBitmap
L_SolarizeBitmap
L_SpatialFilterBitmap
L_StretchBitmapIntensity
L_WindowLevelBitmap

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/ltimg11s.dll
Triworks/乐音 3.0 (Demo)/ltkrn11n.dll
.dll windows:4 windows x86 arch:x86

7c1c0fd94d8bf523656750ebc8df1e28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
GetProcAddress
GlobalHandle
GetProfileIntA
GetVersion
CreateFileA
GetTempFileNameA
GetTempPathA
ReadFile
MulDiv
GetModuleHandleA
SetFilePointer
DeleteFileA
TlsSetValue
TlsAlloc
TlsFree
FreeLibrary
LoadLibraryA
SetErrorMode
GlobalUnlock
GlobalLock
GlobalAlloc
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CloseHandle
GlobalReAlloc
lstrlenA
SetEndOfFile
WriteFile
TlsGetValue
HeapCreate
VirtualFree
GetLocaleInfoW
FlushFileBuffers
GetLocaleInfoA
lstrcpyA
GetModuleFileNameA
LCMapStringW
GetLastError
GetCommandLineA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SetStdHandle
GetFileType
SetHandleCount
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
SetLastError
HeapDestroy
WideCharToMultiByte
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
LCMapStringA
HeapAlloc
HeapFree
VirtualAlloc
GetStringTypeA
GetStringTypeW

user32

ReleaseDC
UnregisterClassA
RegisterClassA
GetDC
SetRect
IsWindow
DestroyWindow
UnregisterHotKey
DefWindowProcA
CreateWindowExA
RegisterHotKey
OffsetRect
MessageBoxA

gdi32

GetPaletteEntries
DeleteObject
GetSystemPaletteEntries
GetDeviceCaps
SelectObject
DeleteDC
CreateCompatibleDC
CreateBitmap
CreatePalette
GetObjectA
SetPaletteEntries
GetNearestPaletteIndex

Exports

Exports

DllMain
L_AccessBitmap
L_AllocateBitmap
L_CalcConvertSize
L_ChangeBitmapHeight
L_ChangeBitmapViewPerspective
L_ChangeFromDIB
L_ChangeToDIB
L_ClearBitmap
L_ClearNegativePixels
L_ColorResBitmap
L_ColorResBitmapList
L_CombineBitmap
L_CompareHandleToPalette
L_CompressRow
L_CompressRows
L_ConvertBuffer
L_ConvertBufferExt
L_ConvertFromDIB
L_ConvertToDIB
L_CopyBitmap
L_CopyBitmapData
L_CopyBitmapHandle
L_CopyBitmapListItems
L_CopyBitmapRect
L_CopyGrayParams
L_CopyPlaybackParms
L_CosValue
L_CreateBitmap
L_CreateBitmapFixedPalette
L_CreateBitmapList
L_CreateFixedPalette
L_CreateGrayPalette
L_CreateLeadDC
L_CreatePalette
L_CreateSystemPalette
L_CreateUserMatchTable
L_DefaultDithering
L_DeleteBitmapListItems
L_DeleteLeadDC
L_DeleteLeadRgn
L_DestroyBitmapList
L_DitherLine
L_DupBitmapNewDim
L_DupPalette
L_ExpandRow
L_ExpandRows
L_FillBitmap
L_FilterIO
L_FindPaletteIndex
L_FlipBitmap
L_FlipCompressedBuffer
L_FreeBitmap
L_FreeDuplicateBitmap
L_FreeImage
L_FreeUserMatchTable
L_Get1BitOnTable
L_GetBitmapAlpha
L_GetBitmapColorCountExt
L_GetBitmapColors
L_GetBitmapListCount
L_GetBitmapListItem
L_GetBitmapRow
L_GetBitmapRowCol
L_GetBitmapRowColCompressed
L_GetBitmapRowCompressed
L_GetDefaultXResolution
L_GetDefaultYResolution
L_GetDisDispatch
L_GetFilterIOData
L_GetFixedPalette
L_GetGrayParams
L_GetPaletteEntries
L_GetPaletteSize
L_GetPixelColor
L_GetStatusCallBack
L_GrayScaleBitmap
L_GrowBitmapHeap
L_InitBitmap
L_InitGrayParams
L_InsertBitmapListItem
L_IntChangeBitmapViewPerspective
L_IntGetFixedPalette
L_IntRotateBitmap
L_IsGrayScaleBitmap
L_IsSupportLocked
L_LockBitmap
L_MirrorCompressedBuffer
L_MirrorFromDIB
L_MirrorLine
L_OsAlloc
L_OsAllocInit
L_OsClose
L_OsCreat
L_OsDelete
L_OsFree
L_OsGetTempName
L_OsOpen
L_OsReAlloc
L_OsReAllocInit
L_OsRead
L_OsSeek
L_OsWrite
L_PointFromBitmap
L_PointToBitmap
L_PutBitmapColors
L_PutBitmapRow
L_PutBitmapRowCol
L_PutBitmapRowColCompressed
L_PutBitmapRowCompressed
L_PutBitmapRowSegments
L_PutPixelColor
L_RectFromBitmap
L_RectToBitmap
L_RedirectIO
L_RedirectedClose
L_RedirectedOpen
L_RedirectedRead
L_RedirectedSeek
L_RedirectedWrite
L_ReleaseBitmap
L_RemoveBitmapListItem
L_Resize
L_ResizeBitmap
L_ReverseBitmap
L_RotateBitmap
L_RotateBitmapViewPerspective
L_RotateBuffer90
L_SQRT
L_SetBitmapAlpha
L_SetBitmapDataPointer
L_SetBitmapListItem
L_SetDefaultXResolution
L_SetDefaultYResolution
L_SetDisDispatch
L_SetHotKeyCallback
L_SetPaletteEntries
L_SetStatusCallBack
L_SetUserMatchTable
L_ShearBitmap
L_SinValue
L_SizeBitmap
L_StartDithering
L_StartDitheringExt
L_StartResize
L_StopDithering
L_StopResize
L_ToggleBitmapCompression
L_TranslateBitmapColor
L_TrimBitmap
L_TrimBitmapHeap
L_UnlockBitmap
L_UnlockSupport
L_VersionInfo

Sections

.text
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/lttwn11n.dll
.dll windows:4 windows x86 arch:x86

d92a7fac83ef444c2b6972d586a2dafc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TlsGetValue
FreeLibrary
GetModuleFileNameA
TlsFree
TlsAlloc
lstrcpyA
LoadLibraryA
SetErrorMode
lstrcatA
GetWindowsDirectoryA
lstrcmpA
GetProcAddress
lstrcmpiA
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalHandle
MulDiv
lstrlenA
SetFilePointer
SetStdHandle
CloseHandle
FlushFileBuffers
VirtualAlloc
GlobalLock
GetLastError
LeaveCriticalSection
EnterCriticalSection
WriteFile
WideCharToMultiByte
InitializeCriticalSection
FreeEnvironmentStringsW
HeapAlloc
HeapFree
GetEnvironmentStringsW
HeapDestroy
TlsSetValue
HeapCreate
GetCommandLineA
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
SetLastError
GetEnvironmentStrings
GetStartupInfoA
GetStdHandle
VirtualFree
SetHandleCount
GetFileType
FreeEnvironmentStringsA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP

user32

GetMessageA
TranslateMessage
DispatchMessageA
RegisterWindowMessageA

gdi32

DeleteObject

ltkrn11n

ord162
ord161
ord100
ord174
ord125
ord141
ord130
ord138
ord175
ord134
ord179
ord116
ord163
ord104

Exports

Exports

DllMain
L_IsTwainAvailable
L_TwainAcquire
L_TwainAcquireExt
L_TwainCloseSession
L_TwainEnumSources
L_TwainGetProps
L_TwainSelect
L_TwainSetProps

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/mfc42.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1557eebc6134cee9eb9d0583a2b40341

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_initterm
?terminate@@YAXXZ
_except_handler3
_adjust_fdiv
_onexit
__dllonexit
??1type_info@@UAE@XZ
_mbsnbicmp
wcsncpy
wcscpy
_ltoa
_ultoa
swprintf
_itoa
modf
ceil
fabs
floor
labs
_ftol
_splitpath
_fullpath
atol
__p___argc
_EH_prolog
__p___argv
_beginthreadex
_endthreadex
_strdup
_mbsdec
_expand
strtod
strtol
strtoul
abs
calloc
_msize
_purecall
strftime
_mbctype
localtime
gmtime
time
_ismbcspace
atoi
_ismbcdigit
_mbsnbcmp
sprintf
strlen
_mbclen
vsprintf
_mbsrchr
_mbscspn
_mbsspn
_mbsstr
_mbsrev
_mbslwr
_mbsupr
_mbspbrk
_mbschr
wcslen
_mbscmp
realloc
fclose
fflush
fseek
ftell
fgets
fputs
fwrite
fread
clearerr
_open_osfhandle
_fdopen
__doserrno
_get_osfhandle
memset
_mbsinc
abort
free
malloc
memcmp
memmove
memcpy
_CxxThrowException
mktime
__CxxFrameHandler

kernel32

FindClose
FindFirstFileA
lstrcpyA
MultiByteToWideChar
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
lstrcmpiA
GetShortPathNameA
GetModuleFileNameA
GlobalSize
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalFree
GetFileAttributesA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
LocalFree
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
WaitForSingleObject
CreateSemaphoreA
DeleteFileA
LoadLibraryA
ReleaseMutex
InterlockedExchange
WaitForMultipleObjects
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
LockResource
LoadResource
FindResourceA
FreeLibrary
MulDiv
GetProfileIntA
VirtualProtect
FindResourceExA
SizeofResource
GetProcessVersion
GlobalFlags
GetTempFileNameA
GetDiskFreeSpaceA
LocalUnlock
LocalLock
GetTempPathA
SearchPathA
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
GetCurrentThread
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
FindNextFileA
GetTickCount
lstrlenW
CopyFileA
lstrcpyW
GetUserDefaultLCID
IsDBCSLeadByte
GetSystemDirectoryA
GetProcAddress
UnlockFile
MoveFileA
SetEndOfFile
FlushFileBuffers
LockFile
CloseHandle
ReadFile
SetFilePointer
WriteFile
DuplicateHandle
CreateFileA
GetCurrentProcess
lstrlenA
lstrcmpA
OutputDebugStringA
IsBadStringPtrA
IsBadReadPtr
IsBadWritePtr
GetLastError
IsBadStringPtrW
lstrcpynA
ReleaseSemaphore
SetLastError
CreateMutexA
GetVolumeInformationA
CreateEventA
RaiseException

gdi32

TextOutA
GetPolyFillMode
EnumFontFamiliesA
GetPixel
CreatePalette
GetPaletteEntries
RealizePalette
OffsetRgn
SetBrushOrgEx
CreateMetaFileA
CopyMetaFileA
LPtoDP
SetAbortProc
StartPage
EndPage
EndDoc
AbortDoc
DPtoLP
CombineRgn
SetRectRgn
GetMapMode
CreateDIBPatternBrushPt
CreateHatchBrush
ExtCreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
ExcludeClipRect
SelectClipRgn
OffsetWindowOrgEx
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
StartDocA
EnumFontFamiliesExA
CreateDCA
CreateRectRgnIndirect
Rectangle
UnrealizeObject
PatBlt
CreateBitmap
CreatePatternBrush
CreatePen
CloseMetaFile
DeleteMetaFile
RectVisible
PtVisible
IntersectClipRect
GetViewportOrgEx
GetWindowOrgEx
SetWindowOrgEx
GetDeviceCaps
Escape
GetCurrentPositionEx
MoveToEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetTextFaceA
GetWindowExtEx
GetViewportExtEx
GetROP2
GetBkMode
GetTextAlign
GetNearestColor
GetBkColor
GetTextColor
SaveDC
GetStockObject
RestoreDC
GetCharWidthA
DeleteObject
CreateFontA
StretchDIBits
DeleteDC
CreateCompatibleBitmap
GetTextExtentPoint32A
ExtTextOutA
CreateSolidBrush
BitBlt
CreateFontIndirectA
CreateCompatibleDC
GetTextMetricsA
GetObjectA
SelectObject
SetTextColor
GetClipBox
SetBkColor
GetStretchBltMode

user32

SetCapture
CharToOemA
OemToCharA
UnhookWindowsHookEx
MsgWaitForMultipleObjects
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindowLongA
GetWindow
SendMessageA
SetForegroundWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
DestroyWindow
DefWindowProcA
GetKeyState
GetDlgCtrlID
GetWindowTextA
GetWindowTextLengthA
GetDlgItem
SetWindowPlacement
TrackPopupMenu
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetParent
IsChild
MessageBoxA
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
IsWindowVisible
EnableWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
GetClientRect
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
IsWindow
SetActiveWindow
GetFocus
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
PostMessageA
LoadIconA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
SetCursor
IsWindowEnabled
GetDesktopWindow
ShowWindow
GetActiveWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
LoadCursorA
GetSystemMetrics
WaitMessage
GetCursorPos
GetWindowThreadProcessId
WindowFromPoint
ClientToScreen
TranslateMessage
GetMessageA
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
RedrawWindow
LoadBitmapA
InflateRect
PtInRect
ReleaseDC
InvertRect
GetWindowDC
FillRect
SetTimer
KillTimer
SetRect
GetDC
IsZoomed
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
DrawTextA
GrayStringA
UnionRect
DrawFocusRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
wvsprintfA
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
BeginPaint
EndPaint
TabbedTextOutA
GetSysColorBrush
GetClassNameA
SetWindowTextA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
DestroyIcon
SetCursorPos
DestroyCursor
FindWindowA
IsClipboardFormatAvailable
MessageBeep
RemoveMenu
ValidateRect
PostQuitMessage
UnregisterClassA
ShowOwnedPopups
InsertMenuA
GetMenuStringA
RegisterClipboardFormatA
CopyAcceleratorTableA
InSendMessage
PostThreadMessageA
CreateMenu
WindowFromDC
CountClipboardFormats
SetWindowContextHelpId
CharNextA
GetNextDlgGroupItem
ClipCursor
DrawEdge
EnumChildWindows
InvalidateRgn
FrameRect
LoadStringA
CharUpperA
wsprintfA

Exports

Exports

?classCCachedDataPathProperty@CCachedDataPathProperty@@2UCRuntimeClass@@B
?classCDataPathProperty@CDataPathProperty@@2UCRuntimeClass@@B
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 616KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/midevice.dat
Triworks/乐音 3.0 (Demo)/msvcrt.dll
.dll windows:4 windows x86 arch:x86

179b04fb57bf5f17850c94a941db63fa

Code Sign

13:89:b4:d1:8a:e8:a7:c4:bd:35:c7:9b:8d:88:ca:1f:ca:53:56:91
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12/05/1997, 07:00

Not After

31/12/1999, 07:00

Subject

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

bd:11:9a:da:43:ed:21:fb:46:58:84:89:ca:46:88:90:25:ee:14:60
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12/05/1997, 07:00

Not After

31/12/1999, 07:00

Subject

OU=VeriSign Time Stamping Service+OU=VeriSign Trust Network+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign\, Inc.,L=Internet

72:b5:13:47:ab:f8:11:d2:a4:1e:00:c0:4f:79:fe:8e
Certificate

Issuer

CN=Microsoft Beta PCA Authority,OU=Copyright (c) 1999 Microsoft Corp.+OU=Microsoft Corporation

Not Before

13/01/1999, 07:00

Not After

01/02/2000, 07:00

Subject

CN=Microsoft Windows 2000 Beta,OU=Copyright (c) 1999 Microsoft Corp.+OU=Microsoft Corporation

Extended Key Usages

ExtKeyUsageCodeSigning

4f:ff:a6:23:54:b1:ee:2d:5b:e1:ff:3f:b0:86:01:72
Certificate

Issuer

CN=Microsoft Beta Root Authority,OU=Copyright (c) 1999 Microsoft Corp.+OU=Microsoft Corporation

Not Before

11/01/1999, 07:00

Not After

31/12/2005, 07:00

Subject

CN=Microsoft Beta PCA Authority,OU=Copyright (c) 1999 Microsoft Corp.+OU=Microsoft Corporation

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumSystemLocalesA
RtlUnwind
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetUnhandledExceptionFilter
GetModuleFileNameA
GetModuleFileNameW
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetCommandLineA
GetVersionExA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
ResumeThread
CreateThread
TlsSetValue
ExitThread
CloseHandle
GetCurrentThreadId
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
HeapFree
HeapAlloc
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
SetHandleCount
GetFileType
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
MultiByteToWideChar
GetCommandLineW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
SetEnvironmentVariableW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
RaiseException
GetUserDefaultLCID
GetLocaleInfoW
GetTimeZoneInformation
FlushFileBuffers
SetFilePointer
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
Sleep
Beep
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
CreateProcessA
CreateProcessW
HeapValidate
HeapCompact
HeapWalk
HeapSize
ReadConsoleA
SetConsoleMode
GetConsoleMode
SetEndOfFile
WriteConsoleA
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
LockFile
UnlockFile
CreateFileA
CreatePipe
ReadFile
CreateFileW
GetSystemTimeAsFileTime
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?unexpected@@YAXXZ
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__argc
__argv
__badioinfo
__crtCompareStringA
__crtGetLocaleInfoW
__crtLCMapStringA
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__isascii
__iscsym
__iscsymf
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pioinfo
__pxcptinfoptrs
__set_app_type
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__unguarded_readlc_active
__wargv
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_creat
_cscanf
_ctime64
_ctype
_cwait
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirst64
_findfirsti64
_findnext
_findnext64
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstat64
_fstati64
_ftime
_ftime64
_ftol
_fullpath
_futime
_futime64
_gcvt
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getws
_global_unwind2
_gmtime64
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_localtime64
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_mktime64
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osplatform
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putws
_pwctype
_read
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_searchenv
_seh_longjmp_unwind
_set_error_mode
_set_sbh_threshold
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snwprintf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv
_spawnve
_spawnvp
_spawnvpe
_splitpath
_stat
_stat64
_stati64
_statusfp
_strcmpi
_strdate
_strdup
_strerror
_stricmp
_stricoll
_strlwr
_strncoll
_strnicmp
_strnicoll
_strnset
_strrev
_strset
_strtime
_strupr
_swab
_sys_errlist
_sys_nerr
_tell
_telli64
_tempnam
_time64
_timezone
_tolower
_toupper
_tzname
_tzset
_ui64toa
_ui64tow
_ultoa
_ultow
_umask
_ungetch
_unlink
_unloaddll
_unlock
_utime
_utime64
_vsnprintf
_vsnwprintf
_waccess
_wasctime

Sections

.text
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Triworks/乐音 3.0 (Demo)/《化蝶》.mid
Triworks/乐音 3.0 (Demo)/《北国之春》.mid
Triworks/乐音 3.0 (Demo)/《即兴幻想曲》.mid
Triworks/乐音 3.0 (Demo)/《天使的歌声》.mid
Triworks/乐音 3.0 (Demo)/《狮子王》.mid
Triworks/乐音 3.0 (Demo)/《莫扎特小奏鸣曲》.mid
Triworks/乐音 3.0 (Demo)/巴赫二部创意曲.mid
Triworks/乐音 3.0 (Demo)/我的花儿.tri
logo.gif
.gif
下载使用说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 2.2MB

UPX1 Size: 917KB - Virtual size: 920KB

.rsrc Size: 18KB - Virtual size: 20KB

Headers

File Characteristics

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

CODE Size: 16KB - Virtual size: 15KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 36KB - Virtual size: 279KB

.idata Size: 16KB - Virtual size: 13KB

.data1 Size: 20KB - Virtual size: 16KB

DATA Size: 4KB - Virtual size: 2KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.reloc Size: 52KB - Virtual size: 48KB

588d909b97d979e12c63a97519211fc0

Headers

File Characteristics

Imports

kernel32

ltkrn11n

Exports

Exports

Sections

.text Size: 198KB - Virtual size: 198KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 51KB - Virtual size: 96KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 8KB

db58398fd0e3cd5ce9b60631d60e8046

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ltkrn11n

Exports

Exports

Sections

.text Size: 200KB - Virtual size: 200KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 22KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 7KB

Headers

File Characteristics

Sections

code Size: - Virtual size: 20KB

text Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

205445a932dcc6260073c015014167ca

Headers

File Characteristics

Imports

kernel32

ltkrn11n

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 9KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

91b5d244ec4691fa6acfd6b9f5499aef

Headers

File Characteristics

Imports

ltkrn11n

UPX0
Size: - Virtual size: 2.2MB

UPX1
Size: 917KB - Virtual size: 920KB

.rsrc
Size: 18KB - Virtual size: 20KB

.text
Size: 1.3MB - Virtual size: 1.3MB

CODE
Size: 16KB - Virtual size: 15KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 36KB - Virtual size: 279KB

.idata
Size: 16KB - Virtual size: 13KB

.data1
Size: 20KB - Virtual size: 16KB

DATA
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

.reloc
Size: 52KB - Virtual size: 48KB

.text
Size: 198KB - Virtual size: 198KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 51KB - Virtual size: 96KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 8KB

.text
Size: 200KB - Virtual size: 200KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 22KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 7KB

code
Size: - Virtual size: 20KB

text
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 9KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 195KB - Virtual size: 195KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 13KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 7KB - Virtual size: 6KB

.text
Size: 81KB - Virtual size: 80KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 10KB - Virtual size: 23KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 7KB - Virtual size: 7KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 9KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 3KB

.text
Size: 272KB - Virtual size: 272KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 55KB - Virtual size: 60KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 7KB